Jump to content

Phoenix75

Active Members
  • Content Count

    10
  • Joined

  • Last visited

About Phoenix75

  • Rank
    Hackling

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. @kdodge maybe it works...but i don't know anticipately the id of the keyboard...you agree? 🙂 so...if i've every time access before to the platform for showing it that Ducky became just a toy for bathroom..:-)
  2. Correct. Kasperksy is another try. Ad you told, when you put a different antivirus on Defender goes down and kick in only if you uninstall the third party AV. For completing the issue (and before approaching here...) I've tried to use a 1903 with a different AV also. that because few people use Defender in a business environment. Anyway, my consideration are adressed on that: if a simple Defender can stop the Ducky, what can do a professional AV? The same thing. 🙂 Is there a way for knowing the firmware\release version of the duck and what kind of firmware there's installed? I think same as you: new Ducky are different from older ones..or...you've a firmware on it that bypass all the issue i've...
  3. sometimes yes, sometimes simply not starts. I see that you're a Linux one 🙂 when you install a different AV on a Windows machine, automatically Defender disable itself because the system is happy that there's a new AV installed. It's quite impossibile to uninstall Defender anyway. I agree with you. I think that with the right firmware maybe it can works. But finding the right one is not simple, i'll continue trying and update...thank you all.
  4. Bob, firstly thank you..I own 35 technical certifications in systems, networks and security...I'm a 6 times MVP and a CEH...before coming here crying i've done somekind like 10 hours of trials. 😂 I'm quite sure that on a 1703 or 1803 Windows distribution is working, but, surely, i can do a try. If Defender is in down in the system (and there's a different suite like Kaspersky for example) the Ducky runs. BUT if i put on rogue keyboard option in Kaspersky suite you obtain the same behaviour: the payload don't works at all. Now, as you understand, it's clear that i don't want a magic wand for hacking everything, but a simple system with a professional AV is quite mandatory today. When i go to attend at some colleagues speeches about cybersecuirty they're every time showing a magic disposal that putted on is working and cracks magically the host. I was tired to see that...so i tried to buy also a "magic one" but that has only enforced my idea..if a system is right protected, cracking it without a social engineering attack is quite impossibile. Anyway, sorry for the talk. My duck is quite blue-green inside and black outside. It would be fantastic if you could tell the firmware you've installed..but there are only 3 versions i've found for classic duck and only other 3 for twin duck..all others ar for other purposes. Thank you for now. I'll update.
  5. Thank you all. The windows version i'm using is the latest 1903 (build 18362.295) the ducky has installed the 2.1 firmware, also tried with twin ducky 2.1 but has a keyboard bug i've seen so i've used 2.001. With twin ducky the AV inspect immediately the partition and lock the injection file, sometimes it removes it. I've tried 2 phisical machines and 1 vm. Same behaviour. I still not understand what you guys mean when tell "you've to work on it", if the system lock immediately the usb device when you plug it you can work for years but there's no solution to that...making device a useless peace of plastic. :) when i go home i try the Unknown script. I'll update you. Thank you for your help.
  6. Sorry...there must be a kind misunderstanding. I'm telling that if you plug the ducky into a Windows 10 actual environment, this environment doesn't permit the launch of the ininjection file...you're telling me that i've to improve. 🙂 If isn't possible to launch a file from a USB keyboard emulator like Rubber Ducky is the device is useless and how do you right told, good only for demo online and for selling it. The thing that hurt me is that is still sold on Amazon and on the HAK5 site when it's clear that today you can't use it in a real environment. If you tell me that bunny works maybe i can try...but i've doubt that you can bypass a windows machine with an antivirus full modules enabled..have you tried? if not bypass, will turn also that hardware in a useless one. I'm talking about windows because 95% of pc's of the world are windows based. Thank you very much anyway for your support, nice to meet you.
  7. Hi to all, I've bought this device for pentesting and learning. I'm quite a newbie about that kind of hardware..but it seems that the actual Windows Defender of 1903 Windows Edition prevent every kind of payload working. Is that true? I've tried quite 50 payloads. With a System with Defender on it not starts at all. I've also flashed the Ducky with Twin Ducky...it seems that is worse..it takes sometimes to analyze the usb and sometimes finds the inject.bin and remove it. All payload with "gmail send" are not working because of authentication, every payload with password grabbing are not working because Nirsoft removed command line text export for security purposes...so this is a useless expensive usb key and nothing more? Now, my question: It's really possibile outside Mister Robot series using that device in a real environment? Because I've invested about 20 hours on it and i don't find a way to make it really have a real use if the system is protected..but i've spent aout 90$ in my country for buying it. If somenone has been able to make it works i will be glad to know. Thank You.
  8. Hi, I've an annoying problem. The system I'm using is NOT an UK\US keyboard. In that way, everytime the script is launched by injection it fails because of wrong characters. This i think is why the ducky maintain the original US\UK system. Is there a way to change? Because actually i'm translating symbols from UK to my country keyboard but is huge.. I've searched around but found nothing about it.
  9. Hi, asked somenthing about Rubber Ducky usb on 22nd of July, never received a single answer...if that are the support forums it's a tragedy...where eventually can I ask?? Because actually the item is quite useless... thank you. that was my question Hi to all, I've received some days ago my rubber ducky. I't working fine, but I'm unable to create a payload that executes files on the key. I've found some payloads for credential extraction that uses nirsoft softwares. I've used the script, compiled it and putted on the key. I've also copied all the executables in the root. It gives me every time error that doesn't found the executables. Maybe because there's no drive letter mounted? Is there a real way to use externa programs on the key? In particular i'm testing that script. Is it working in some manner? or for windows 10 there's something better? Sorry if some seems stupid questions but i'm new at all.
  10. Hi to all, I've received some days ago my rubber ducky. I't working fine, but I'm unable to create a payload that executes files on the key. I've found some payloads for credential extraction that uses nirsoft softwares. I've used the script, compiled it and putted on the key. I've also copied all the executables in the root. It gives me every time error that doesn't found the executables. Maybe because there's no drive letter mounted? Is there a real way to use externa programs on the key? In particular i'm testing that script. Is it working in some manner? or for windows 10 there's something better? Sorry if some seems stupid questions but i'm new at all.
×
×
  • Create New...